Initial PIN How to Guide

From Swivel Knowledgebase
Revision as of 12:29, 22 June 2018 by RWithey (talk | contribs) (Configure the default PIN attribute on PINsafe)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search


Overview

This document outlines how to configure an Initial PIN for a new user in Swivel. Existing users are not affected if an Initial PIN is set.

Note: Configuring a default value for a PIN may be a security risk and is NOT RECOMMENDED unless each default PIN is unique and cannot be read by other users. It is recommended to use the randomly generated PIN.


Prerequisites

Swivel

PIN number in Data Source repository


Creating an Initial PIN

Configure the Default PIN Attribute on the data Source

1. On the Data Source locate a suitable attribute for the initial PIN number. For Active Directory this can be a new or existing LDAP attribute.

2. Populate the attribute for each user with the default PIN value.


Configure the default PIN attribute on PINsafe

1. On the Swivel Administration console select Repository then the repository name.

2. Enter the Repository Data Source PIN attribute:, this is the name of an LDAP attribute for that user configured above.

3. Wait for an automatic synchronisation of the data source or select under User Administration the repository and click on Sync Now.

Setting a Default PIN Directly

It is possible to set the same initial PIN for all users. This is not recommended for security reasons, but if you want to do this, rather than entering the name of an attribute, enter a "#" followed by the actual PIN you want to use for all new users.

Note that this does not affect existing users, only users created after this value is set.

Testing

Test authentication using the PIN.


Known Issues

Troubleshooting